Project

General

Profile

Changelog 5 0 » History » Version 4

Marius BĂLTEANU, 2022-06-21 07:32
Updates for 5.0.2 release.

1 1 Marius BĂLTEANU
h1. Changelog 5.0.x
2
3 4 Marius BĂLTEANU
h2. version:5.0.2 (2022-06-21)
4
5
h3. [Email notifications]
6
7
* Defect #37138: Mentions of users with "@" in their username
8
* Patch #37065: When someone is member of watcher group, 'watched_by' may be wrong and incomplete
9
* Defect #37162: Missing space between notification sentence and author name when edit a wiki page
10
11
h3. [Email receiving]
12
13
* Defect #37187: no-permission-check allows issue creation in closed/archived projects
14
15
h3. [Gems support]
16
17
* Defect #35892: Redmine::WikiFormatting::CommonMark::FormatterTest#test_footnotes fails with CommonMarker 0.23.2
18
* Defect #37249: Missing rexml gem causes errors in PUT - Adding the gem manually everything works
19
20
h3. [Issues]
21
22
* Patch #37155: Issue#last_notes fallback does not respect notes visibility
23
* Defect #37151: The done ratio of a parent issue may not be 100% even if all subtasks have a done ratio of 100%
24
* Defect #37171: Ability to change the issue category or issue target version with nonexistent value for the specific project
25
26
h3. [Performance]
27
28
* Patch #37135: Reduce extra queries in ProjectQuery.default
29
30
h3. [REST API]
31
32
* Defect #37157: Internal server error when trying to retrieve AnonymousUser's information via Users API
33
34
h3. [Security]
35
36
* Defect #37255: Information Leak in QueryAssociationColumn/QueryAssociationCustomFieldColumn
37
* Defect #37256: Medium severity XSS security vulnerabilities (3x) in jQuery UI v1.12.1
38
* Defect #37136: Remote code execution vulnerability in commonmarker
39
40
h3. [Text formatting]
41
42
* Defect #37130: Wiki notation `attachment:file_name` cannot make a link to a file attached to other journals
43
44
h3. [Time tracking]
45
46
* Defect #33914: Even if the default value of Activities (time tracking) is set, it may not be reflected.
47
48
h3. [UI - Responsive]
49
50
* Defect #36453: Issue subject overflow in subtasks and relations tables
51
52 2 Marius BĂLTEANU
h2. version:5.0.1 (2022-05-16)
53
54
h3. [Administration]
55
56
* Defect #36932: Handle nil return of Redmine::Themes.theme(Setting.ui_theme) in Redmine::Info.environment
57
58
h3. [Attachments]
59
60 3 Go MAEDA
* Defect #36887: copyImageFromClipboard function failed to generate a unique file name
61
* Patch #36817: copyImageFromClipboard function targets the first file input of the page and may conflict with other plugins
62 2 Marius BĂLTEANU
* Defect #37053: Attachments are lost when the status of the ticket is changed
63
64
h3. [Documentation]
65
66
* Defect #36862: Duplicate v5.0.0 section in Changelog
67
* Defect #36863: Missing v4.2.5 section in Changelog
68
69
h3. [Email notifications]
70
71
* Defect #36909: Mentions not working if status is changed
72
73
h3. [Email receiving]
74
75
* Defect #37030: Requests fail with "Can't verify CSRF token authenticity" in mail handler
76
77
h3. [Gems support]
78
79
* Defect #36892: Redmine does not start when installed --without markdown
80
81
h3. [I18n]
82
83
* Defect #36998: Revert lazy loading of i18n files introduced in Redmine 5.0
84
85
h3. [Rails support]
86
87
* Patch #36917: Update Rails to 6.1.6
88
89
h3. [Security]
90
91
* Patch #36912: Update Nokogiri versions to fix two critical CVE's
92
93
h3. [Text formatting]
94
95
* Defect #36958: Crafted input breaks CommonMark Markdown formatter
96
97
h3. [Translations]
98
99
* Patch #36905: German translation update for 5.0-stable
100
* Patch #36930: Bulgarian translation update for 5.0-stable
101
* Patch #36934: Russian translation update for 5.0-stable
102
* Patch #37003: Czech translation update for 5.0-stable
103
* Patch #37024: Galician translation update for 5.0-stable
104
* Patch #37025: Polish translation update for 5.0-stable
105
106 1 Marius BĂLTEANU
h2. version:5.0.0 (2022-03-28)
107
108
h3. [Accounts / authentication]
109
110
* Feature #30998: Add an rake task to prune registered users after a certain number of days
111
* Feature #31920: Require 2FA only for certain user groups
112
* Feature #33345: Include an authentication method name in LDAP connection error messages
113
* Feature #35001: Disable API authentication with username and password when two-factor authentication is enabled for the user
114
* Feature #35439: Option to require 2FA only for users with administration rights
115
* Feature #36825: Increase email address length limit from 60 to 254
116
117
h3. [Administration]
118
119
* Defect #35421: Unhandled exception when a YAML syntax error is detected in configuration.yml
120
* Feature #32116: Add configured theme to Redmine::Info
121
* Feature #35562: Show warning in admin/info when there are pending migrations
122
* Feature #35934: Show 2FA status in users list from administration with option to filter
123
* Feature #36391: Change the default value for "Time span format" from "decimal" to "minutes"
124
125
h3. [Attachments]
126
127
* Defect #35539: Race condition (possible filename collision)  in Attachment.disk_filename
128
* Feature #32898: PDF thumbnails support on Windows
129
* Feature #35462: Download all attachments in a journal
130
131
h3. [Code cleanup/refactoring]
132
133
* Defect #31132: Remove unused column trackers.is_in_chlog
134
* Defect #36149: Typo in CSS class for lists expander icon
135
* Defect #36361: IssueRelationsControllerTest#test_bulk_create_should_show_errors randomly fails
136
* Defect #36394: Avoid passing ActionController::Parameters outside of MailHandlerController
137
* Feature #34337: Remove jQuery Migrate
138
* Feature #35259: Output test coverage report to the console
139
* Feature #35671: Move subtasks section on issues show view into a separate partial
140
* Patch #15118: Deprecate and rename rss_* methods to atom_* methods
141
* Patch #31035: Remove redefinition of ActionMailer::LogSubscriber#deliver which is no longer necessary because of the removal of Setting.bcc_recipients
142
* Patch #32922: Reload detached attachments
143
* Patch #33079: Remove unused argument from Redmine::Helpers::TimeReport
144
* Patch #33337: Clean-up workflows controller
145
* Patch #34976: Add missing fixtures to TimeEntryCustomFieldTest
146
* Patch #35024: System test fails in Windows due to "/" path separator
147
* Patch #35026: Remove rake task check_parsing_by_psych
148
* Patch #35031: Remove deprecated code that are supposed to be removed in Redmine 5
149
* Patch #35075: Use named routes in base layout and account sidebar
150
* Patch #35076: Menu manager - generate correct URLs when rendering from a namespaced controller
151
* Patch #35208: Use `Time.use_zone` instead of `Time.zone=`
152
* Patch #35230: Fix typo in ApplicationHelper.html_title comment
153
* Patch #35396: Use base_scope for issue query results
154
* Patch #35466: Rename test/fixtures/configuration/*.yml.example to test/fixtures/files/configuration/*.yml
155
* Patch #35610: Cleanups after Wiki tab removal from project settings (#26579)
156
* Patch #35727: Add missing fixtures to Redmine::ProjectJumpBoxTest
157
* Patch #35773: Move sidebar content on versions index view (roadmap) into a  separate partial
158
* Patch #35952: Explicitly specify text formatting in the test suite
159
* Patch #35975: Add missing fixtures to UserTest
160
* Patch #36005: Adopt 2FA emails to new Mailer interface
161
* Patch #36241: MenuManagerTest randomly fails
162
* Patch #36347: Add missing fixture to IssuesHelperTest
163
* Patch #36358: Use File.exist? instead of deprecated File.exists?
164
* Patch #36379: Update copyright year in source files to 2022
165
* Patch #36716: IssuesControllerTest randomly fails
166
* Patch #36730: Replace Member.find_or_new with ActiveRecord's find_or_initialize_by
167
* Patch #36770: Fix to use a correct exception class ActiveRecord::IrreversibleMigration in migrations
168
169
h3. [Custom fields]
170
171
* Defect #32977: Remove references to deleted user from "user"-Format CustomFields
172
* Feature #14275: Add hinting to custom fields
173
174
h3. [Database]
175
176
* Feature #35073: Escape values in LIKE statements to prevent injection of placeholders (_ or %)
177
* Patch #36416: Cleanup more dependent objects on project delete
178
179
h3. [Documentation]
180
181
* Feature #33859: Add a list of supported languages by the code highlighter to the help
182
* Feature #34978: Add the list of supported browsers to docs and drop support for IE 11
183
184
h3. [Documents]
185
186
* Patch #17924: Structured Document list for more flexible UI design with CSS
187
188
h3. [Email notifications]
189
190
* Defect #32199: Security notification is not sent when an admin changes the password of a user
191
* Defect #35017: X-Redmine-Issue-Assignee email header field is empty when the assignee of an issue is a group
192
* Defect #36393: Mailer.with_synched_deliveries doesn't correctly detect other async Queue adapters
193
* Feature #13919: Mention user on issues and wiki pages using @user with autocomplete
194
* Feature #30820: Drop setting "Blind carbon copy recipients (bcc)"
195
196
h3. [Filters]
197
198
* Defect #36389: Filter parameters of Query string do not work when default query is enabled
199
* Feature #5893: Filter issues by notes
200
* Feature #34715: Filter issues by file description
201
* Feature #35764: Multiple search terms in the "contains" operator of text filters
202
* Patch #35312: Gracefully handle invalid operators and associations requested in queries
203
204
h3. [Gantt]
205
206
* Defect #33381: Possible double includes in issue query in gantt helper
207
208
h3. [Gems support]
209
210
* Patch #35000: Update SimpleCov to 0.21
211
* Patch #35025: Update capybara to 3.36
212
* Patch #35136: Update RuboCop to 1.25
213
* Patch #35142: Update RuboCop Performance to 1.13
214
* Patch #35207: Update RuboCop Rails to 2.14
215
* Patch #35361: Update CSV to 3.2
216
* Patch #35691: Update Nokogiri to 1.13
217
* Patch #36325: Update Rouge to 3.28
218
* Patch #36355: Update roadie-rails to 3.0
219
* Patch #36564: Update I18n to 1.10
220
221
h3. [Groups]
222
223
* Feature #12795: View group members by non-admin users
224
225
h3. [Hook requests]
226
227
* Defect #34743: Hooks for queries helper
228
229
h3. [I18n]
230
231
* Defect #36396: Custom I18n Pluralization rules are not applied correctly
232
* Feature #36728: Reintroduce lazy loading of i18n files
233
234
h3. [Importers]
235
236
* Defect #36377: Encoding drop-down in the import settings defaults to US-ASCII instead of general_csv_encoding in Korean, Thai, and Shimplified Chinese
237
* Feature #34718: Auto guess file encoding when importing CSV file
238
* Feature #35137: Reject CSV file without data row when importing
239
* Feature #35365: Allow sending account information when importing users
240
241
h3. [Issues]
242
243
* Defect #15634: Add watching users to a ticket should switch "watch" link to "unwatch" if own user was added
244
* Defect #33521: Use issue path instead of bulk update issues path when using the context menu with only one issue selected
245
* Defect #34641: When editing an issue, the Log time and/or Add notes does not show or hide dynamically
246
* Feature #4347: Contributing to an issue should automatically add the user to the watchers list
247
* Feature #6033: Allow addition/removal of subtasks to show in parent's history
248
* Feature #7360: Issue custom query: default query per instance, project and user
249
* Feature #13099: Issue Summary: add statistics about issues without assignee, version or category
250
* Feature #29076: Add button to "Create and follow" when adding a subtask from the parent issue
251
* Feature #31278: Change Delete button name to Delete issue
252
* Feature #35559: Query links for related issues on issue page
253
254
h3. [Issues list]
255
256
* Feature #34932: "Copy link" feature for issues list
257
258
h3. [OpenID]
259
260
* Feature #35755: Drop OpenID support
261
262
h3. [PDF export]
263
264
* Feature #35683: PDF rendering improvements when exporting an issue or a list of issues
265
266
h3. [Performance]
267
268
* Feature #29041: Update session token only once per minute
269
* Feature #35324: Preload principal and roles in members#index
270
* Feature #35374: Reduce amount of work on projects show API
271
* Feature #36294: Lazy load inline images
272
* Feature #36505: Reduce database queries when rendering Custom fields box in the project settings tab
273
* Feature #36696: Improve performance of adding or removing members of a group
274
275
h3. [Permissions and roles]
276
277
* Defect #34029: 403 Forbidden error when non-member try to upload a file
278
279
h3. [Plugin API]
280
281
* Defect #35455: Require redmine/sort_criteria globally
282
283
h3. [Project settings]
284
285
* Defect #13199: "Edit" misaligned in project members view
286
* Defect #36318: Saving time tracking activities without any change may turn a system activity into a project activity
287
288
h3. [Projects]
289
290
* Feature #35795: Settings for global and user default custom ProjectQuery
291
292
h3. [REST API]
293
294
* Feature #10171: Updating journal notes via REST API
295
* Feature #15855: Add information about whether an issue is open or closed to Issues API response
296
* Feature #24976: Include new statuses allowed by workflow in Issues REST API
297
* Feature #34766: Better error message when no API format is recognised
298
* Feature #34857: Add total estimated hours, spent hours, total spent hours for issues to issue list API
299
* Feature #35420: API to archive/unarchive projects
300
* Feature #35505: Add enabled core fields to /trackers API response
301
* Feature #35507: API to close/reopen projects
302
* Feature #36303: Include avatar URL in Users API
303
304
h3. [Rails support]
305
306
* Feature #29914: Migrate to Rails 6.1 with Zeitwerk autoloading
307
* Feature #35030: Allow parallel testing
308
* Patch #35081: Update config/environments/*.rb for Rails 6.1
309
* Patch #36317: Set default protect from forgery true
310
311
h3. [Roadmap]
312
313
* Feature #6432: Allow unchecking all trackers in Roadmap view sidebar
314
315
h3. [Ruby support]
316
317
* Feature #31128: Drop Ruby < 2.5 support
318
* Feature #34992: Ruby 3.0 support
319
* Feature #36205: Ruby 3.1 support
320
321
h3. [SCM]
322
323
* Feature #5242: Display source project for cross-project associated revisions for issues
324
* Feature #16849: Render Textile and Markdown files in the repository browser
325
326
h3. [Text formatting]
327
328
* Defect #36580: Fix code copying in common browsers
329
* Feature #20511: Comments for Textile text formatting
330
* Feature #32424: CommonMark Markdown Text Formatting
331
* Feature #35677: Preserve leading white space when quoting using the JS toolbar
332
* Feature #35742: Enable task list items for CommonMark text formatting
333
* Patch #35104: Code blocks - consistent rendering and retaining user-supplied language name in rendered HTML
334
335
h3. [Third-party libraries]
336
337
* Feature #36701: Update Chart.js to 3.7.1
338
* Patch #35729: Update jQuery to 3.6.0
339
340
h3. [Time tracking]
341
342
* Defect #21056: Project specific TimeEntryActivity name not updating properly
343
344
h3. [UI]
345
346
* Defect #36524: Query Links on Issues and Time Logs Import Sidebars broken
347
* Feature #34494: Rename the save, edit and delete buttons on the query form to clarify the scope
348
* Feature #35770: Change "Edit" label in the context menu to "Bulk Edit" when multiple issues are selected
349
* Patch #30448: Remove wrapper2 and wrapper3 wrapping containers
350
* Patch #36429: Make issue tabs DOM more consistent
351
352
h3. [Wiki]
353
354
* Feature #7652: Ability to add watchers to Wiki pages